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CLOUD ONE™ = APPLICATION SECURITY 


Detection and protection for modern applications and APIs built on your container, serverless, 
and other computing platforms 





Businesses are aligning to cloud-native application architectures faster than ever before. Application Security's Key Benefits 
Brought on by streamlined operations processes and the flexibility in build pipeline : 
development tools and services, businesses are using application development asa:  * Detects and protects against the OWASP 


Top 10 runtime threats, including SQLi. 


























strategic investmen in the hopes that they'll achieve improved application delivery and Remate command executioni (RCE) 
customer satisfaction. : threats are also provided in detection 
A recent study conducted by research firm ESG indicated that 35 percent of businesses : mode. 

were using a combination of containers and serverless platforms for their application : * Blocks injection and other automated 
builds, with serverless adoption was quickly on the rise. : attacks 

t continues to become easier to make applications for the web, and businesses are using : * Complete coverage and reporting of 
hem at ever-increasing rates. Unfortunately, not everyone-including developers and : every attack instance 

hose who must defend their systems-knows how to secure them properly. With the ‘ * Provides full diagnostic details about code 
interconnection of most web applications and IT systems, this lack of knowledge exposes : vulnerabilities 
enterprises to security risks from hackers who know how to exploit vulnerabilities in order : e Avoids time-wasting false positives and 
o gain access to systems, software, and sensitive data. ‘ heoretical issues 
Trend Micro Cloud One™ - Application Security is built for speedy deployment, with minimal: — * Offers insight into an attacker's identity 
impact on development streams and performance. It only takes a minute to add the library —: and attack methodology 

o your application, and there is no need to change your development code. Application : * Installs in two minutes-no source code 
Security bootstraps itself into your application at runtime, as opposed to an SDK that has to changes required 


be integrated into the application. You just need to include the Application Security library 
with your application and activate it with the application keys. This approach simplifies 
how security is delivered and is a significant shift for application developers who need 
immediate, real-time protection for their apps and customers. 











Application Security minimizes design and deployment risks by protecting against 
sophisticated hacks from inside the application. Optimized for modern application 
architectures, Application Security immediately blocks unwanted activity in real time to 
protect data and business logic. The result is unprecedented protection, keeping web 
application owners and their users safe from hacks with the highest degree of accuracy. 
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VULNERABILITY DETECTION 


Bots, hackers, and other bad actors will find and exploit vulnerabilities in web applications, which 


are caused by coding errors and weaknesses in dependencies 


NO CODE CHANGES REQUIRED 
The self-contained Application Security agent runs inside the 
requiring any code changes in the application itself. 


SECURE YOUR CUSTOMERS!’ DATA 





process of your application without 


Application Security is designed specifically to secure web assets in the cloud and within local 


networks, protecting your customers’ data and your business 


AUTOMATIC PROTECTION 


When your app is exposed to a malicious attack, the agent identifies the attacker, type of attack, and 


blocks it. User data is protected, and you have the insight you 


need to fix the coding vulnerabilities. 


One of the key differentiators with Application Security is the ability to have malware 


detection where your web application might accept fi 
pictures/avatars, or PDFs. 





e uploads, such as attachments, 





Hackers can take advantage of the this by uploading malicious files, such as excel 


spreadsheets with malicious macros, images with Ima 
malicious scripts. You need to be able to quickly and e 


geTragick payloads, or PDFs with 
asily block this threat prior to any 


destination point without forcing developers to write or modify code. 


HOW APPLICATION SECURITY WORKS 


Application Security is based onruntime self-protection technology. The Application Security 
library is self-contained and independently protects its application, even if it becomes 
disconnected from the Application Security service. User data is never exposed outside the 


application, ensuring your apps remain compliant with d 


I J 


Protects Blocks Secures 
Protects applications with known Blocks sensitive data Secures hard-to-monitor 
vulnerabilities until remediation from being exposed by applications, for example, when 
resources are available injection attacks hundreds of web apps are 
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ata protection mandates. 
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running simultaneously on an 
internal network. 
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Knowledge 


is Power 


How does Application Security differ 
from other RASP technologies? 


There are three primary differences: 


* Code-leve 


visibility into attacks 


* Broader coverage of different 


vulnerabil 
e Breadth o 


In addition 


ities 


platform suppor 





and applica 


ions, Applicatio 


enables development team 
identify and prioritize vulne 





o securing your customers 


n Security 
s to quickly 
rability 


remediation efforts by providing vital 
information about the identity and 
severity of attackers. 





























‘SECUREID LAMBDA / Events 


Filter Page Results 3s priority + selected Attack Types + 


EVENTS REPORTED 


a 
priority THREAT TYPE GROUP cuente LASTSEEN ~ 
= Medium SECUREID LAMBDA 153.126.205.162 10/25/2019, 5:5951 
SECUREID LAMBDA 20220116321 10/24/2019, 619.07 
SECUREID LAMBDA 185.128.41.50 10/29/2019, 21:34:58 
eee lal loa SECUREID LAMBDA 185.128.4150 10/23/2019, 21:34:58 


SECUREID LAMBDA 185 128.41 50 10/23/2019, 21:34:57 





‘SECUREID LAMBDA 185.128.41.50 10/23/2019, 21:34:57 


{© NO GROUPS UNDER ATTACK. (Hover fer details) 





Application Security lets you monitor and review exploitation attempts across an unlimited number of applications. Attack details are 
propagated across your infrastructure, meaning, if an attack is detected on one application, it is immediately flagged on every app 
server and for every monitored app in your account. 


While the performance experienced by an end user may vary depending on the application type and its overhead, Application Security 
strives to make sure requests can be handled in under 1ms. 


Application Security delivers information, such as the time, origin, and type, on every attack that occurs on your apps to a central 
reporting point. Over time, this information builds into a broad profile of the attacks impacting your networks, enabling your web 
security team to map trends and deploy appropriate resources. 


Application Security also gives your developers full visibility into how the vulnerability in your code would have been exploited, 
including a stack trace down to the line of code (where relevant), reporting of request parameters, and how your app’s behavior would 
have been modified. 


SQL Injection on MONEYX LOCAL A VIEW STACK 


@ ACTION TAKEN PRIORITY 





BLOCKED MEDIUM 
@ ATTACKER IP © TIME = POLICY 
187.61.48.17 08/21/2019, 23:18:30 Click to Manage Policy 


Request Details 


Transaction Type HTTP 


Invocation Type Servlet 
Base URL http://localhost:8080 
URL Path /payment/list-received/3%200r%201=1%20-- 


SQL Injection Details 
Trigger Always True 
Dialect h2 Supported @ No 


SQL Statement select * from Payments p where p.receiver = [NUMBER] or [NUMBER]=[NUMBER] 


Triggered Policy Details 


Always True (no properties) 
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THREAT TYPE DETECTION PROTECTION 





SYSTEM REQUIREMENTS 




















Open Redirect Vv v 
Remote Command Execution (RCE) v v e Java (8 and newer) 
F * Python (2.7, 3.4 and newer) 

Il | File A v v 

= = = e NodeJS (10 and newer) 
SQL Injection v v : * PHP (7.0 and newer) 
Antivirus/Anti-Malware Scanning of File j J : + .NET coming soon (.NET Framework 4.5.2 
Uploads : and newer, .NET Core 2.0 and newer) 
Malicious Payload F j : * Ruby coming soon (2.0.0 and newer) 

















Application Security automatically protects your apps against common web-based attacks 
and many classes of zero-day vulnerabilities. Additionally, with Application Security's deep 
instrumentation, API's are protected similar to a web application across a JSON/GraphQL 
interface. With Application Security working inside the application, you only need one 
solution to secure both your web application and API's. 


Application Security is part of Trend Micro Cloud One™, a cloud security 
services platform, which also includes: 


e Trend Micro Cloud One™ - Workload Security: 
Runtime protection for workloads (virtual, physical, cloud, and containers) 


e Trend Micro Cloud One™ - Container Image Security: 
Image scanning in your build pipeline 


e Trend Micro Cloud One™ - File Storage Security: 
Security for cloud file and object storage services 


e Trend Micro Cloud One™ - Network Security: 
Cloud network layer IPS security 


e Trend Micro Cloud One™ - Conformity: 
Cloud security and compliance posture management 
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